Forum Discussion
NimbostratusAccess to an Internal VIP on the same ADC through which APM network access was granted.
We have an APM policy which assigns a network L3 VPN resource. Once the resource is launched the client gets an IP address from a Lease Pool in an internal vlan. Lets say the lease pool is 10.1.1.0/24
This works great and the client can access all internal resources as if it is on the corporate network.
However there is 1 virtual server which is hosted on the internal VIP on the same LTM+APM cluster. Lets say that VIP is 10.5.5.5. When the client tries to reach out to this VIP through the L3 access the connection does not go through.
Taking a tcpdump on the LTM+APM shows SYN's go out from the assigned Lease pool IP but no ACK's back. So is routing the issue ? but this is a VIP which is on the LTM itself.
What do I need to get it to work ?
Do I need a self-IP on the LTM+APM which is also in the lease-pool VLAN ?
cheers !!
1 Reply
Arnaud_LemaireEmployee
Amit, it should be working as that is the way to provide SSO for web based app inside a network tunnel. Can you check if your VS is restricted to specific vlan ?
